REMARKS 

By this amendment, Claims 1 and 8 have been amended, Claims 15-32 have been 
cancelled, and no claims have been added. Claim amendments and cancellations are made 
without acquiescence to the position of the Office Action or prejudice to pursue the claims as 
previously presented in a continuation application. Hence, Claims 1-14 are pending in the 
application. 

INTERVIEW SUMMARY 

The Applicant thanks the Examiner for the Interview conducted on October 4, 2005. The 
interview was between Examiner Van H. Nguyen and the Applicant's Attorney, Christopher J. 
Brokaw. Pending Claim 1 that was rejected to in the Office Action was discussed along with 
U.S. Patent No. 6,473,791 issued to Al-Ghosein CAl-Ghosein"'), In particular, the discussion 
focused on the similarity between Al-Ghosein to the approach discussed in the Applicants' 
background in paragraph 3. No agreement was reached. The Applicant is providing herein the 
amendment that was discussed during the interview. 

REJECTIONS RAISED IN THE OFFICE ACTION 
Claims 1-32 were rejected under 35 U.S.C. § 103(a) as allegedly being unpatentable over 
Al-Ghosein in view of U.S. Patent No. 6,230,312 issued to Hunt CHunr), 
The rejections are respectfully traversed. 
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THE PENDING CLAIMS ARE PATENTABLE OVER THE CITED ART 

Assuming, arguendo, that Al-Ghosein and Hunt were to be properly combined, each of 
pending Claims 1-14 would still recite one or more elements that are not disclosed, taught, or 
suggested by the cited art, either individually or in combination. 



Claim 1 

Claim 1 recites: 

A method for applying one or more policy constraints in an application program, 

the method comprising the computer-implemented steps of: 

executing the application program to cause a routine, contained in the application 

program, to be invoked, 
wherein invocation of the routine causes redirecting a request, to perform the 

routine, to a policy broker instead of the application program performing 

the routine, 

wherein program code, contained in the application program, is not modified to 
cause the request, to perform the routine, to be redirected to the policy 

broker; and 

the policy broker performing the routine, wherein the policy broker causes 
the one or more policy constraints to be applied to the performance of 
the routine, (emphasis added) 

At least the above-bolded feature of Claim 1 is not shown by Al-Ghosein or Hunt, either 
individually or in combination. 

Claim 1 provides an approach for applying one or more policy constraints in an 
application program. According to Clairri 1, the execution of an application program causes a 
routine, contained in the application program, to be invoked. The invocation of the routine 
causes redirecting a request, to perform the routine, to a policy broker instead of the application 
program performing the routine. The program code, contained in the application program, is not 
modified to cause the request, to perform the routine, to be redirected to the policy broker. The 
policy broker performs the routine by causing one or more policy constraints to be applied to the 
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performance of the routine. Advantageously, the application programmer does not need to know 
what poHcy routines need to be called, and under what conditions, to apply a particular policy 
constraint in the execution of a routine of an application when writing the application program 
code. 

On the other hand, Al-Ghosein teaches an approach for providing a centralized security 
facility (the intelligent trust manager) for implementing security poUces. According to Al- 
Ghosein, applications create a request describing an action that needs to be checked against an 
appropriate security policy. For example, the application may need to determine whether a 
potentially dangerous action (such as downloading content from a website) that it is proposing to 
take is allowed or forbidden in accordance with a policy. The application invokes a method of 
the intelligent trust manager requesting a decision. An answer is provided to the application, 
such as "Yes" or "No," and optionally a rationale for the decision may be provided. After the 
application obtains the policy decision, the application executes logic based on the obtained 
policy decision to apply the policy, e.g., if the proposed action is allowed, the proposed action is 
performed. (See Abstract; Col. 4, line 63- Col. 5, linelS; Col. 5, line 60 - Col. 6, line 5.) Thus, 
in Al-Ghosein, the application determines what action should be taken and how a policy is to be 
applied. 

Unfortunately, Al-Ghosein suffers from the same deficiencies as prior approaches 
discussed in the Applicant's background (e.g., see paragraph 9). Specifically, Al-Ghosein 
requires that the application programmer know what policy routines of the intelligent trust 
manager need to be called, and under what conditions, to apply a particular policy constraint in 
the execution of an application when writing the application program code. To illustrate, Al- 
Ghosein states: 
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To obtain a decision, the application 60 bundles action information includes a 
name or the like identifying the desired action and policy-specific arguments in to 
a request 68 (e.g., a COM request object), and invokes a method of the intelligent 
trust manager 62 requiring a decision. (Col. 5, lines 5-9). 

Another problem discussed in the Applicant's background from which Al-Ghosein suffers 
is that the application programmer must also modify the application program code to include 
program logic to process the return codes provided by the policy routines. For example, Al- 

Ghosein states: 

the decision [the policy decision] is returned to the system component, which then 
operates accordingly. (See Abstract). 

In view of the fundamental differences between the features of Claim 1 and the teachings 
of Al-Ghosein, the element of " the policv broker performing the routine, wherein the policy 
broker causes the one or more policy constraints to be applied to the performance of the routine " 
featured in Claim 1, is not disclosed, taught, or suggested by Al-Ghosein, The portion ofAl- 
Ghosein cited to show this feature (Col. 4, lines 17-23) is relied upon to show a policy object 
making an advisory action (e.g., yes or no), and returning the decision to the system component 
via the intelligent trust manager. However, this teaching fails to show a policy broker causing 
one or more policy constraints to be applied to the performance of the routine. 

Instead, the Al-Ghosein teaches obtaining a policy decision in a manner that is completely 
independent from the invocation of the routine on which the policy constraints are to be applied. 
For example, Al-Ghosein teaches that an application obtains a policy decision from the 
intelligent trust manager before invoking a routine. After obtaining the policy decision, the 
application thereafter executes logic according to the obtained policy decision, which may or 
may not include the invocation of a routine. Thus, when the request to invoke the routine is 
processed according to Al-Ghosein, a policy constraint is not applied to the invocation of the 
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routine because, to the extent that a policy needed to be checked or consulted, the policy was 
checked or consulted prior to the invocation of the routine. 

Consequently, this element is not disclosed, taught, or suggested by Al-Ghosein. 

Additionally, the Office Action acknowledges that the approach of Al-Ghosein does not 
specifically teach, "without modifying program code," and Hunt is relied upon to show this 
feature. Hunt is directed towards determining how to distribute one or more portions (called 
units) of an application on one or more computers. A unit of the application may need to reside 
on a specific computer, and thus, the unit may be subject to a per-unit location constraint. (See 
Col. 2., lines 26-35). 

The portion of Hunt cited to show "wherein program code, contained in the application 
program, is not modified to cause the request, to perform the routine, to be redirected to the 
policy broker" (Col. 37, lines 22-29) discusses how to develop a model of distributing units 
across a group of computers. In this portion. Hunt states, "the programmer creates a distributed 
application with minimal effort simply by running the application through profiling scenarios 
and writing the corresponding distribution model into the application binary without modifying 
application sources." Importantly, the phrase "without modifying application sources," in this 
context, does not refer to not modifying program code (software), but instead refers to not 
changing the computer to which a unit of the application is assigned in a distribution model. 
Indeed, the only mention of program code in the cited portion of Hunt is the suggestion that the 
application binary may be modified by writing a distribution model into the application binary. 
Thus, to the extent that the cited portion of Hunt discloses program code, the cited portion of 
Hunt actually discloses modifying the program code. It is further submitted that Hunt contains 
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no suggestion of a policy broker performing a routine by causing one or more policy constraints 
to be applied to the performance of the routine. 

As a result, even if Al-Ghosein and Hunt were to be combined, the resulting combination 
would still fail to suggest "the policy broker performing the routine, wherein the policy broker 
causes the one or more policy constraints to be applied to the performance of the routine" as 
featured Claim I . As a result, this element is not disclosed, taught, or suggested by Al-Ghosein 
and Hunt, either individually or in combination. 

Moreover, Al-Ghosein and Hunt have not been properly combined. The Office Action 
states that it would have been obvious: 

to a person of ordinary skill in the art at the time the invention was made to 
combine the teachings of Mohsen Al-Ghosein with Hunt because Hunt 's 
teachings would allowed [sic] a programmer to insert or remove constraints on a 
specific application without changing the application sources. Therefore, 
reducing the cost and improving performance and efficiency of Mohsen Al- 
Ghosein 's system. 

However, notwithstanding the fact that Al-Ghosein and Hunt do not disclose numerous 
claim features, the Applicant respectfully submits that there is nothing in either Al-Ghosein or 
Hunt that teaches or suggests combining their respective teachings. 

As stated in the Federal Circuit decision In re Dembiczak, 50 USPQ.2d 1617 
(Fed. Cir. 1999), (citing Gore v. Garlock, 220 USPQ 303, 313 (Fed. Cir. 1983)), "it is very easy 
to fall victim to the insidious effect of the hindsight syndrome where that which only the inventor 
taught is used against its teacher." Id. The Federal Circuit stated in Dembiczak "that the best 
defense against subtle but powerfiil attraction of a hindsight-based obviousness analysis is 
rigorous application of the requirement for a showing of the teaching or suggestion to combine 
prior art references." Id. Thus, the Federal Circuit explains that a proper obviousness analysis 
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requires '"particular factual findings regarding the locus of the suggestion, teaching, or 

motivation to combine prior art references." Id, (emphasis added). 

In particular, the Federal Circuit states: 

"We have noted that evidence of a suggestion, teaching, or motivation to 
combine may flow from the prior art references themselves, the knowledge of 
one of ordinary skill in the art, or, in some cases, from the nature of the 
problem to be solved. . .although Hhe suggestion more often comes from the 
teachings of the pertinent references'. . .The range of sources available, 
however, does not diminish the requirement for actual evidence. That is, the 
showing must be clear and particular., \Bro?id conclusory statements 
regarding the teaching of multiple references, standing alone, are not 
'evidence.'" Id, (emphasis added; internal citations omitted). 

Neither Al'Ghosein nor Hunt show any suggestion, teaching, or motivation to combine 
their teachings, nor does the Office Action provide a "clear and particular" showing of the 
suggestion, teaching, or motivation to combine their teachings. The Office Action does not cite a 
portion ofAl-Ghosein or Hunt to show a motivation to combine their teachings. In fact, the only 
motivation provided in the Office Action is the hindsight observation that by combining features 
of those references, one may achieve the benefits achieved from the invention as described and 
claimed in the application. 

Further, in view of the above-discussed mischaracterization of Hunt's teachings, it is 
entirely unclear how Al-Ghosein may be combined for use with Hunt, For example, no portion 
of Al'Ghosein suggests how the applications in the approach of AUGhosein may be decomposed 
into units for placement on two or computers in a distributed system. Similarly, no portion of 
Hunt suggests how a centralized security facility of Al-Ghosein could be implemented in the 
distributed model of Hunt, In fact, the two references appear to teach away from each other, as 
both references discuss two entirely different paradigms {Al-Ghosein is directed towards 
providing a centralizing source of policy infoniiation, whereas Hunt is directed towards 
providing a decentralized or distributed application). 
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It is respectfully submitted that such a hindsight observation is not consistent with the 
Federal Circuit's requirement for "particular factual findings." 

For at least the above reasons, it is respectfully submitted that one or more elements of 
Claim 1 are not disclosed, taught, or suggested by Al-Ghosein or Hunt, considered either 
individually or in combination. Further, it is respectfully submitted that Al-Ghosein and Hunt 
have not been properly combined, and thus, a rejection of Claim 1 under 35 U.S.C. § 103(a) 
cannot be supported. Consequently, Claim 1 is patentable over the cited art, and is in condition 
for allowance. 

Claims 2-14 

Claim 8 contains features similar to those recited in Claim 1. Consequently, for at least 
the reasons given above with respect to Claim 1, it is respectfully submitted that Claim 8 is also 
patentable over the cited art and is in condition for allowance. 

Claims 2-7 and 9-14 are dependent claims, each of which depends (directly or indirectly) 
on one of the claims discussed above. Each of Claims 2-7 and 9-14 is therefore allowable for the 
reasons given above for the claim on which it depends. In addition, each of 2-7 and 9-14 
introduce one or more additional limitations that independently render it patentable. However, 
due to the fundamental differences already identified, to expedite the positive resolution of this 
case a separate discussion of those limitations is not included at this time, although the Applicant 
reserves the right to further point out the differences between the cited art and the novel features 
recited in the dependent claims. 
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CONCLUSION 

For the reasons set forth above, it is respectfully submitted that all of the pending claims 
are now in condition for allowance. Therefore, the issuance of a formaLNotice of Allowance is 
believed next in order, and that action is most earnestly solicited. 

The Examiner is respectfully requested to contact the undersigned by telephone if it is 
believed that such contact would further the examination of the present application. 

A petition for extension of time, to the extent necessary to make this reply timely filed, is 
hereby made. If any applicable fee is missing or insufficient, throughout the pendency of this 
application, the Commissioner is hereby authorized to charge any applicable fees and to credit 
any overpayments to our Deposit Account No. 50-1302. 

Respectfully submitted, 

HICKMAN PALERMO TRUONG & BECKER LLP 




Christopher JTBrokaw 

Reg. No. 45,620 

Date: October 10, 2005 



2055 Gateway Place, Suite 550 
San Jose, C A 95110 
(408) 414-1080 ext. 225 
Facsimile: (408)414-1076 
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